From 58477b8a96773da0de428e45ed56a7b1b44c0ab6 Mon Sep 17 00:00:00 2001
From: MarkKoz <KozlovMark@gmail.com>
Date: Sat, 28 Dec 2019 21:45:40 -0800
Subject: Test root and direct children are read-only

---
 tests/test_nsjail.py | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

(limited to 'tests')

diff --git a/tests/test_nsjail.py b/tests/test_nsjail.py
index 00ca89c..e439c15 100644
--- a/tests/test_nsjail.py
+++ b/tests/test_nsjail.py
@@ -56,14 +56,17 @@ class NsJailTests(unittest.TestCase):
         self.assertEqual(result.stderr, None)
 
     def test_read_only_file_system(self):
-        code = dedent("""
-            open('hello', 'w').write('world')
-        """).strip()
+        for path in ("/", "/etc", "/lib", "/lib64", "/snekbox", "/usr"):
+            with self.subTest(path=path):
+                code = dedent(f"""
+                    with open('{path}/hello', 'w') as f:
+                        f.write('world')
+                """).strip()
 
-        result = self.nsjail.python3(code)
-        self.assertEqual(result.returncode, 1)
-        self.assertIn("Read-only file system", result.stdout)
-        self.assertEqual(result.stderr, None)
+                result = self.nsjail.python3(code)
+                self.assertEqual(result.returncode, 1)
+                self.assertIn("Read-only file system", result.stdout)
+                self.assertEqual(result.stderr, None)
 
     def test_forkbomb_resource_unavailable(self):
         code = dedent("""
-- 
cgit v1.2.3